In the miniOrange SAML SP Single Sign On plugin prior to 4.8.73 for WordPress, the SAML Login Endpoint is vulnerable to XSS via a specially crafted SAMLResponse XML post.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
miniorange saml sp single sign on |